$ rpki-client -vvf rpki.apnic.net/member_repository/A91D12C2/B2FE35DE378011EAB2141374C4F9AE02/6C8823E2378211EA8FE81077C4F9AE02.roa File: 6C8823E2378211EA8FE81077C4F9AE02.roa (raw, json) Hash identifier: ElMvFtSWQc3L/PeymWA1CWb+wYib+HMGSvmnYch4X7s= Subject key identifier: 55:E3:6B:68:B6:44:CA:56:E8:2C:5E:7D:78:E3:54:B4:40:63:80:C2 Certificate issuer: /CN=A91D12C2/serialNumber=166520A415A754E358652C5790CE86B4B2632DD1 Certificate serial: 0A22 Authority key identifier: 16:65:20:A4:15:A7:54:E3:58:65:2C:57:90:CE:86:B4:B2:63:2D:D1 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FmUgpBWnVONYZSxXkM6GtLJjLdE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91D12C2/B2FE35DE378011EAB2141374C4F9AE02/6C8823E2378211EA8FE81077C4F9AE02.roa Signing time: Tue 14 Nov 2023 20:28:22 +0000 ROA not before: Tue 14 Nov 2023 20:28:22 +0000 ROA not after: Fri 31 Jan 2025 00:00:00 +0000 asID: 64046 IP address blocks: 103.198.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91D12C2/B2FE35DE378011EAB2141374C4F9AE02/FmUgpBWnVONYZSxXkM6GtLJjLdE.crl rsync://rpki.apnic.net/member_repository/A91D12C2/B2FE35DE378011EAB2141374C4F9AE02/FmUgpBWnVONYZSxXkM6GtLJjLdE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FmUgpBWnVONYZSxXkM6GtLJjLdE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 19:51:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2594 (0xa22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91D12C2/serialNumber=166520A415A754E358652C5790CE86B4B2632DD1 Validity Not Before: Nov 14 20:28:22 2023 GMT Not After : Jan 31 00:00:00 2025 GMT Subject: CN=6553d866-f27d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:8f:cf:16:4d:aa:9d:47:67:7d:e2:f8:99:7f: 95:4e:17:fa:3d:bd:be:88:21:4c:9c:74:bf:70:17: 9d:6f:10:42:1d:62:80:4b:c7:a2:ef:8c:5e:ef:7d: de:6d:e9:15:27:39:0f:e4:eb:9e:2a:33:49:17:dc: 37:ef:5e:ba:7c:ea:08:6d:a5:66:4e:72:5c:4a:94: 71:a7:7a:6f:cf:87:b9:38:93:a9:80:10:01:99:f1: 25:c7:fc:57:63:75:73:06:a2:6a:99:d5:99:cf:7a: 4d:20:67:6f:fc:e0:20:a5:ae:d9:5d:9d:6a:4f:d6: 14:52:83:64:9a:34:c7:4f:99:8a:a0:37:84:be:72: 40:dc:46:56:b5:5c:f8:a4:fd:68:13:00:c6:90:b6: dc:62:51:67:7c:15:fa:23:1a:af:db:32:fb:da:90: 62:67:b9:97:82:7a:ac:f1:e9:8e:4e:68:b0:ad:fc: 85:3c:70:c7:cf:9e:98:2b:80:0b:b4:a3:86:5b:a5: 4e:c2:57:43:5d:67:76:a9:86:04:bb:78:c8:c9:9a: 9f:77:87:65:30:6f:1a:6f:49:56:ec:f7:5c:7c:07: fc:99:fd:70:31:0b:e4:4e:77:80:31:45:40:88:18: 20:28:8c:7e:a0:3e:bd:dd:68:89:20:14:e8:76:4e: ad:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:E3:6B:68:B6:44:CA:56:E8:2C:5E:7D:78:E3:54:B4:40:63:80:C2 X509v3 Authority Key Identifier: keyid:16:65:20:A4:15:A7:54:E3:58:65:2C:57:90:CE:86:B4:B2:63:2D:D1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91D12C2/B2FE35DE378011EAB2141374C4F9AE02/FmUgpBWnVONYZSxXkM6GtLJjLdE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/FmUgpBWnVONYZSxXkM6GtLJjLdE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91D12C2/B2FE35DE378011EAB2141374C4F9AE02/6C8823E2378211EA8FE81077C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.198.2.0/23 Signature Algorithm: sha256WithRSAEncryption 15:b6:5a:9c:34:a2:cf:a9:27:3e:19:87:67:a9:32:7b:01:0d: 37:6b:25:d0:d3:05:1b:9d:db:e4:39:f6:66:8e:81:71:1f:09: 0e:28:a8:a8:43:46:ac:64:a4:c7:d2:ed:01:87:05:c2:f1:8a: 62:bd:b5:a4:fb:80:be:00:f9:c3:26:5c:83:f7:ad:38:14:5d: c8:4a:20:e8:2a:e7:a1:a2:af:ef:cd:5b:b8:31:c1:4a:ab:80: 3d:67:e6:00:66:df:2d:49:a3:05:71:6e:e2:bc:61:00:e7:0e: d8:82:87:cd:db:87:48:01:84:d9:ba:70:e8:07:a5:ae:9c:1a: 54:2b:e9:00:d0:5b:33:da:5e:5b:2f:70:01:b1:5a:bd:23:94: c9:77:2e:00:4a:d2:51:ba:72:65:bb:9e:29:19:b0:a0:39:71: bf:07:96:50:b0:75:04:62:66:54:00:c5:7b:68:83:3b:e7:f5: 62:14:55:6d:4f:26:23:9a:54:11:a5:60:db:43:6c:9e:70:cb: a6:c8:65:83:de:2d:c9:eb:5a:12:a8:f7:0a:eb:c6:d4:8a:66: 6e:35:40:8f:16:a3:24:77:ab:5c:cc:9c:86:30:f9:dc:56:2c: 41:87:37:36:dc:5d:4e:a8:0e:18:e7:3d:7b:0f:38:fd:b9:cc: eb:1e:6f:c4 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICCiIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RDEyQzIxMTAvBgNVBAUTKDE2NjUyMEE0MTVBNzU0RTM1ODY1MkM1NzkwQ0U4NkI0 QjI2MzJERDEwHhcNMjMxMTE0MjAyODIyWhcNMjUwMTMxMDAwMDAwWjAYMRYwFAYD VQQDEw02NTUzZDg2Ni1mMjdkMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2o/PFk2qnUdnfeL4mX+VThf6Pb2+iCFMnHS/cBedbxBCHWKAS8ei74xe733e bekVJzkP5OueKjNJF9w37166fOoIbaVmTnJcSpRxp3pvz4e5OJOpgBABmfElx/xX Y3VzBqJqmdWZz3pNIGdv/OAgpa7ZXZ1qT9YUUoNkmjTHT5mKoDeEvnJA3EZWtVz4 pP1oEwDGkLbcYlFnfBX6Ixqv2zL72pBiZ7mXgnqs8emOTmiwrfyFPHDHz56YK4AL tKOGW6VOwldDXWd2qYYEu3jIyZqfd4dlMG8ab0lW7PdcfAf8mf1wMQvkTneAMUVA iBggKIx+oD693WiJIBTodk6tkwIDAQABo4IClTCCApEwHQYDVR0OBBYEFFXja2i2 RMpW6CxefXjjVLRAY4DCMB8GA1UdIwQYMBaAFBZlIKQVp1TjWGUsV5DOhrSyYy3R MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFEMTJDMi9CMkZFMzVERTM3 ODAxMUVBQjIxNDEzNzRDNEY5QUUwMi9GbVVncEJXblZPTllaU3hYa002R3RMSmpM ZEUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL0ZtVWdwQlduVk9OWVpTeFhrTTZHdExKakxkRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx RDEyQzIvQjJGRTM1REUzNzgwMTFFQUIyMTQxMzc0QzRGOUFFMDIvNkM4ODIzRTIz NzgyMTFFQThGRTgxMDc3QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBAFnxgIwDQYJKoZIhvcNAQELBQADggEBABW2Wpw0os+pJz4Z h2epMnsBDTdrJdDTBRud2+Q59maOgXEfCQ4oqKhDRqxkpMfS7QGHBcLximK9taT7 gL4A+cMmXIP3rTgUXchKIOgq56Gir+/NW7gxwUqrgD1n5gBm3y1JowVxbuK8YQDn DtiCh83bh0gBhNm6cOgHpa6cGlQr6QDQWzPaXlsvcAGxWr0jlMl3LgBK0lG6cmW7 nikZsKA5cb8HllCwdQRiZlQAxXtogzvn9WIUVW1PJiOaVBGlYNtDbJ5wy6bIZYPe LcnrWhKo9wrrxtSKZm41QI8WoyR3q1zMnIYw+dxWLEGHNzbcXU6oDhjnPXsPOP25 zOseb8Q= -----END CERTIFICATE-----Generated at Sat May 18 20:48:21 2024 by rpki-client on console-fra.rpki-client.org